Identity Gets Smart
Mark McClain, CEO & Founder opens up to InformationWeek about identity governance. Watch the video »
Identity Governance Buyer's Guide - 2nd Edition
Streamline Compliance
Deliver Convenient Access
Get the Big Picture
Align Access with Business
Apply Best Practices
Manage Identity Data
Manage Compliance
Succeed with SailPoint
Don't take our word for it, see what others are saying.
Stay Connected
Subscribe to our quarterly newsletter. Get the latest news and views with SailPoint's podcast series, "The Identity Intelligence Insider"
Media Contacts
Kari Hanson Michelle Dillon
Choose Wisely
SailPoint's innovative approach is getting noticed. Don't take our word for it, see what others are saying.
Subscribe
SailPoint's Identity Intelligence Insider is a monthly podcast series on hot topics in identity risk management.
CONTACT US
Hours Email Phone
Schedule a Demo
"By using roles to request, approve and certify user access privileges, BNSF will be able to simplify its user administration and compliance processes. SailPoint IdentityIQ will allow us to enforce and verify role-based access across our critical enterprise applications using a streamlined, automated approach." Bart Boudreaux, Director, Technology Services, BNSF Railway
"SailPoint helps us define the connection between user access, financial control and intellectual property protection. Their risk-aware approach focuses on the relative risks associated with user access within our business." Russ Finney, Vice President of U.S. Information Systems operations for Tokyo Electron, U.S. Holdings
"Businesses that are concerned with compliance mandates and ensuring the security and integrity of their IT systems cannot afford 12 to 18 month deployments. With IdentityIQ, organizations can gain immediate payback from automating key governance processes to better address business risk." Kevin Cunningham, Co-Founder and President, SailPoint
"As a publicly-traded company and financial services provider, we are subject to a variety of regulations including FISMA, SOX, PCI, and SAS 70. To meet these requirements, we are standardizing and automating our compliance processes for identity management, so that we can centrally control who gets access to sensitive resources and maintain compliance as the organization changes over time. This centralized and automated approach allows us to proactively address risk and more efficiently maintain a compliant, secure environment." Jerry Archer, Chief Security Officer, Sallie Mae |
Viewpoints ArchiveQuotes, research findings and recommendations from leading industry analysts and gurus on topics such as information security, identity management and compliance. "[Compliance IQ] appears to be very cool and extremely useful for enterprises for both compliance and security purposes" "I've said that this year organizations will be looking for ways to shore up compliance while reducing the overall cost of doing so. Automation products like Compliance IQ could be a very useful tool in that regard. In other words, it can offer a bigger bang for the buck" "Compliance IQ is evidence that corporations will stop complaining about Sarbanes Oxley and will dig in and start implementing real applications to comply" "Managing risk is an inherent part of every business. When it comes to understanding the risks associated with user access privileges and activities on sensitive information systems, enterprises will need to augment traditional provisioning tools with products that provide sophisticated reporting, data analytics and decision support capabilities. These will help organizations achieve new business efficiencies associated with their identity and access management compliance initiatives." "What impressed me most about Compliance IQ is how the product applies sophisticated business intelligence to sort and simplify complex identity management information. By connecting top-line business objectives with bottom-line IT operations, Compliance IQ is poised to help companies achieve impressive results with near-term compliance initiatives." "The cost and complexity of complying with various federal and state compliance regulations continues to drive corporate investments in identity management deployments. The challenge lies in how to help organizations identify and prioritize critical risks and remediation activities across the enterprise. Solutions that offer rich identity analytics and controls automation capabilities will help companies better detect the 'signal from the noise' associated with their identity compliance initiatives." "According to IDC, government and industry regulations will continue to put unprecedented pressure on corporations to secure access to information and applications, and budgetary and staffing constraints will continue to drive them to look for more cost effective ways to manage their security infrastructure. These pressures will fuel 25 percent growth in the identity and access management (IAM) compliance market, which IDC predicts will reach $2 billion by 2010." "Metrics have to be ingrained in the way the modern security executive does his job because they have become so important, so prevalent, so motivating within corporations and for the company's shareholders." "IAM compliance solutions totaled $651 million in 2005 and are forecast to reach $1.982 billion in 2010, a CAGR of 25%." "IDC believes that identity and access management has emerged as a key component of a compliance platform. That said, IDC predicts that compliance and corporate governance initiatives will significantly drive identity and access management software spending in 2006 and beyond." "As end-user organizations take stock of the key lessons learned during the first phase of Sarbanes-Oxley compliance and enter the next phase, they are increasingly cognizant of the opportunity to automate key business processes and leverage common data sets and components across multiple regulatory compliance and legal requirements." "We observe three basic requirements in all regulatory rules. Accountability – who did what and when, and who was responsible. Transparency – you have to be able to see inside the process to be able to understand it. And Measurability – you have to be able to say here's how good we were at doing it. It will not all be based on identity, but identity is absolutely one of the cornerstones. You will not be able to do anything unless you know who was assigned what privileges, and what privileges they should have been assigned." "Spending on Sarbanes-Oxley is only the visible tip of the compliance iceberg. Any expectation that compliance spending might moderate is just wishful thinking as companies in all industries grapple with increased regulatory concerns and stricter governance and risk policies within their own firms." |
